Red Hat Security Advisory: kernel security and bug fix update
🔗 CVE IDs covered (37)
📋 Description
CVE-2021-43975 — kernel: out-of-bounds write in hw_atl_utils_fw_rpc_wait() in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c CVE-2022-3545 — kernel: nfp: use-after-free in area_cache_get() CVE-2022-3594 — kernel: Rate limit overflow messages in r8152 in intr_callback CVE-2022-4744 — kernel: tun: avoid double free in tun_free_netdev CVE-2022-28388 — kernel: double free in usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c CVE-2022-36402 — kernel: vmwgfx: integer overflow in vmwgfx_execbuf.c CVE-2022-38096 — kernel: vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query CVE-2022-38457 — kernel: vmwgfx: use-after-free in vmw_cmd_res_check CVE-2022-40133 — kernel: vmwgfx: use-after-free in vmw_execbuf_tie_context CVE-2022-41858 — kernel: null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip CVE-2022-45869 — kernel: KVM: x86/mmu: race condition in direct_page_fault() CVE-2022-45887 — kernel: memory leak in ttusb_dec_exit_dvb() in media/usb/ttusb-dec/ttusb_dec.c CVE-2022-50148 — kernel: kernfs: fix potential NULL dereference in __kernfs_remove CVE-2023-1382 — kernel: denial of service in tipc_conn_close CVE-2023-2166 — kernel: NULL pointer dereference in can_rcv_filter CVE-2023-2176 — kernel: Slab-out-of-bound read in compare_netdev_and_ip CVE-2023-4921 — kernel: use-after-free in sch_qfq network scheduler CVE-2023-5633 — kernel: vmwgfx: reference count issue leads to use-after-free in surface handling CVE-2023-6606 — kernel: Out-Of-Bounds Read vulnerability in smbCalcSize CVE-2023-6610 — kernel: OOB Access in smb2_dump_detail CVE-2023-6817 — kernel: inactive elements in nft_pipapo_walk CVE-2023-6931 — kernel: Out of boundary write in perf_read_group() as result of overflow a perf_event's read_size CVE-2023-6932 — kernel: use-after-free in IPv4 IGMP CVE-2023-7192 — kernel: refcount leak in ctnetlink_create_conntrack() CVE-2023-28772 — kernel: lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow CVE-2023-30456 — kernel: KVM: nVMX: missing consistency checks for CR0 and CR4 CVE-2023-31084 — kernel: blocking operation in dvb_frontend_get_event and wait_event_interruptible CVE-2023-33951 — kernel: vmwgfx: race condition leading to information disclosure vulnerability CVE-2023-33952 — kernel: vmwgfx: double free within the handling of vmw_buffer_object objects CVE-2023-40283 — kernel: use-after-free in l2cap_sock_release in net/bluetooth/l2cap_sock.c CVE-2023-45862 — kernel: drivers/usb/storage/ene_ub6250.c CVE-2023-51042 — kernel: use-after-free in amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c CVE-2023-51043 — kernel: use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c CVE-2023-53421 — kernel: blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats() CVE-2024-0565 — kernel: CIFS Filesystem Decryption Improper Input Validation Remote Code Execution Vulnerability in function receive_encrypted_standard of client CVE-2024-0646 — kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination CVE-2024-1086 — kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function
🔗 References (38)
- selfhttps://access.redhat.com/errata/RHSA-2024:1404
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2024989
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2073091
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2133451
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2133452
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2133453
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2133455
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2144379
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2148520
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2149024
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2151317
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2156322
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2161310
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2177371
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2181330
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2187813
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2187931
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2188468
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2213139
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2218195
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2218212
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2231800
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2244715
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2245514
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2245663
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2252731
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2253611
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2253614
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2253908
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2255139
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2255283
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2256279
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2258518
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2259866
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2260005
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2262126
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1404.json